Title: Stanford Information Security
1Stanford Information Security
- Managing at Stanford
- July 14, 2005
- David Hoffman
- Associate Information Security Officer
2How do identity thieves exploit your computer?
- Sniffing
- Spyware
- Phishing
- Pharming
3Sniffing
- Watching network traffic coming from your
computer - No direct access required
- Can be passive or active
- Wired or Wireless
4Preventing Sniffing
- Always look for the SSL lock, and verify that
the URL is correct and uses https// - Norton Privacy Control, McAfee Privacy Service,
etc.
5Spyware
- Monitors your activity on your computer
- Installed by intrusion or by trickery
- Can be just slimy, or sinister
- What does it look like?
6(No Transcript)
7Preventing Spyware
- Be careful what software you install.
- Keep your system patched and virus-free
- BigFix
- Windows Automatic Updates
- Symantec Anti-Virus, etc.
- Regular cleanings
- Spy Sweeper
- Spybot Search Destroy
- Microsoft MSRT
8Phishing
- Email message purports to be from a bank or a
store. - Asks you to click on a legitimate-looking link.
- Link actually goes to attackers fake copy of the
real web site, where youll be asked for private
information.
9(No Transcript)
10(No Transcript)
11Checking server whois.melbourneit.com Results
Domain Name.......... verifyaccountlogin.com
Creation Date........ 2004-12-02 Registration
Date.... 2004-12-02 Expiry Date..........
2005-12-02 Organisation Name.... Sean
Lefkovitz Organisation Address. 55 west
chestnut apt 1301 Organisation Address.
Organisation Address. chicago Organisation
Address. 60610 Organisation Address. IL
Organisation Address. UNITED STATES Admin
Name........... Sean Lefkovitz Admin
Address........ 55 west chestnut apt 1301 Admin
Address........ Admin Address........ chicago
Admin Address........ 60610 Admin
Address........ IL Admin Address........ UNITED
STATES Admin Email.......... makingbig_at_yahoo.co.
uk Admin Phone.......... 1.7734104781 Admin
Fax............
12(No Transcript)
13Preventing Phishing
- Dont talk to strangers!
- Check the links.
- If you want to be certain, type the URL yourself
- If you didnt initiate contact, dont click just
because they tell you to.
14Pharming
- Redirecting your browser by force
- DNS poisoning
- Cant fool HTTPS
- or can it? MarketScore
15Preventing Pharming
- Check the locks
- Desktop management practices
- Keep it minimal
- Keep it uniform
- Keep an eye on it
16Lets Be Careful Out There
- securecomputing.stanford.edu